Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/TYtHvqv_RyheDt5WUZAOyPp7TCY.roa
File: TYtHvqv_RyheDt5WUZAOyPp7TCY.roa (raw, json)
Hash identifier: xYQ6Qt77kvwuq4biH/1t03Sr6ABmM8zKCq10zyUOoVI=
Subject key identifier: 4D:8B:47:BE:AB:FF:47:28:5E:0E:DE:56:51:90:0E:C8:FA:7B:4C:26
Certificate issuer: /CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Certificate serial: 102E158D
Authority key identifier: 8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/TYtHvqv_RyheDt5WUZAOyPp7TCY.roa
Signing time: Tue 26 Apr 2022 19:38:08 +0000
ROA not before: Tue 26 Apr 2022 19:38:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210393
IP address blocks: 85.31.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271455629 (0x102e158d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Validity
Not Before: Apr 26 19:38:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8b47beabff47285e0ede5651900ec8fa7b4c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b5:1a:33:47:a6:61:9e:b6:27:c8:00:a3:98:
3e:c4:e1:a8:49:9a:50:85:2d:51:42:d5:d5:7f:9f:
1e:ed:e4:de:38:a5:ca:db:e2:84:b4:17:c2:26:fc:
01:32:ff:90:6a:08:f3:c9:94:9c:25:6c:29:f3:a7:
af:10:0a:d6:69:26:20:eb:a7:ae:25:1a:77:08:cc:
5c:1e:f4:3f:c3:40:2d:c2:a0:c0:79:42:54:89:fd:
1d:02:fb:0a:87:df:51:4c:ff:fd:38:a6:7f:bc:a7:
60:f0:84:b3:17:c1:4e:cd:04:82:ab:0e:13:16:ee:
56:c6:fe:dd:56:d0:33:46:27:09:12:58:30:ff:78:
8c:e2:5b:b9:28:05:42:dc:c2:36:77:85:62:a4:e7:
32:96:a2:90:d3:6f:4d:52:8f:df:df:20:de:e7:7e:
47:b9:f6:ff:1a:44:06:e0:3d:b1:af:30:6a:bf:40:
7c:2a:e5:11:60:b7:99:4b:02:23:a7:69:e7:92:3a:
81:2e:8a:01:43:4b:83:8f:9f:4c:81:2f:3f:82:8f:
ff:38:cc:9d:10:11:54:ba:65:b5:fa:41:b5:a9:36:
a5:a1:29:59:d7:f5:3e:66:81:67:dd:c0:13:75:68:
b6:c7:af:ca:6c:7d:55:dd:e7:be:ca:58:75:31:fe:
08:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8B:47:BE:AB:FF:47:28:5E:0E:DE:56:51:90:0E:C8:FA:7B:4C:26
X509v3 Authority Key Identifier:
keyid:8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/TYtHvqv_RyheDt5WUZAOyPp7TCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.6.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5a:86:7e:68:27:da:73:db:70:ac:22:28:f7:dd:a2:6a:96:
93:21:51:96:33:76:8c:79:a8:9a:07:6c:5e:d2:f6:2d:02:83:
7d:d9:d9:8b:90:11:10:4c:1e:07:51:a0:f9:ef:9e:bd:0b:e3:
3f:01:93:b6:c6:4d:37:71:0d:3d:f2:33:49:fb:24:34:85:c8:
59:76:5f:33:cd:df:93:d1:f4:2e:67:c4:d2:4a:0b:ef:4a:e2:
16:ab:bb:01:a8:38:a7:1f:db:e7:a2:6e:1d:5d:88:3e:cc:57:
92:42:dc:9d:66:67:fe:7a:fb:14:49:89:ca:6a:fb:d9:c3:3f:
81:f7:b0:0f:68:bb:12:25:86:02:31:b2:f6:cd:63:0c:a3:dc:
d8:77:85:c2:ef:e7:9f:3c:78:5b:dc:33:a2:72:9b:dd:c0:b0:
0f:ef:8c:03:6c:67:e7:0c:34:e6:a1:b7:02:e1:2c:8e:0d:d7:
f6:95:19:ea:f4:79:81:1a:b1:b4:7d:bf:0a:31:94:a7:c5:7a:
d5:ea:83:37:7a:e2:97:44:ac:cc:6e:f1:58:58:05:84:53:64:
73:d9:57:d7:a2:69:96:2c:29:f3:2e:b6:fe:6c:29:2e:38:82:
11:3a:9f:44:36:61:6a:55:3c:37:d5:36:b4:d3:bc:4e:5f:78:
33:3a:9c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:09 2024 by rpki-client on console-ams.rpki-client.org